You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Possibly a Net::SSLeay problem? After upgrading my machine to Debian 12, some code of mine started crashing when I called get_fingerprint on a handle where there is no client certificate.
use strict;
use IO::Socket::SSL;
my$srv = IO::Socket::SSL->new(
LocalAddr=>'0.0.0.0:1998',
Listen=> 10,
SSL_cert_file=>'cert.pem',
SSL_key_file=>'key.pem',
) ordie"error=$!, ssl_error=$SSL_ERROR";
while (1) {
my$cl = $srv->accept ordie"failed to accept or ssl handshake: $!$SSL_ERROR";
my$req = <$cl>;
print$cl"Hello. Your fingerprint is:";
print$cl$cl->get_fingerprint;
$cl->close;
}
This assumes self-signed cert.pem and key.pem files in the same directory.
Connect:
gnutls-cli --insecure localhost:1998
Type "OK" or whatever and hit Enter.
OK
Hello. Your fingerprint is:*** Fatal error: The TLS connection was non-properly terminated.
*** Server has terminated the connection abnormally.
The server quits with:
Segmentation fault
I have:
IO::Socket::SSL 2.083
Net::SSLeay 1.92
OpenSSL 3.0.9 30 May 2023 (Library: OpenSSL 3.0.9 30 May 2023)
The code should have not worked before either. For one, your server does not even request a client certificate (no SSL_verify_peer set). And then it just assumed in IO::Socket::SSL::get_fingerprint_bin that it will have a certificate, thus crashing if no certificate was there. This is fixed in ea04d0e.
Possibly a Net::SSLeay problem? After upgrading my machine to Debian 12, some code of mine started crashing when I called get_fingerprint on a handle where there is no client certificate.
This assumes self-signed
cert.pem
andkey.pem
files in the same directory.Connect:
Type "OK" or whatever and hit Enter.
The server quits with:
I have:
#1
SMP PREEMPT_DYNAMIC Debian 6.1.27-1 (2023-05-08) x86_64 GNU/LinuxThe text was updated successfully, but these errors were encountered: